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Method and device for controlling distribution and use of digital works 



The present invention relates to a method and device for controlling 
distribution and use of a digital work. Furthermore, the present invention relates to a record 
carrier for storing the digital work. 

A fundamental issue facing the publishing and information industries as they 

5 consider electronic publishing is how to prevent unauthorised and unaccounted distribution 
of usage of electronically published materials. Electronically published materials are 
typically distributed in a digital form and created on a computer-based system having the 
capability to recreate the materials. Audio and video recordings, software, books and 
multimedia works are all being electronically published. Royalties are paid for each 

1 0 accounted for delivery, such that any unaccounted distribution results in an unpaid royalty. 

The transmission of digital works over networks such as the widely used 
Internet is nowadays usual practice. The Internet is a widespread network facility by which 
computer users in many universities, corporations and government entities commimicate and 
trade ideas and information. Thus, it would be desirable to utilise such networks for 

1 5 distribution of digital works without the fear of v^de-spread unauthorized copying. 

The apparent conversions between consumer appliances and computers, 
increasing network and modem speeds, the declining costs of computer power and band- 
widths, and the increasing capacity of optical media will combine to create a world of hybrid 
business models in which digital contents of all kinds may be distributed on optical media 

20 played on at least occasionally cormected appliances and/or computers, in which the one-time 
purchase models common in music CDs and initial DVD (digital video disc) movie offerings 
are augmented by other models, for example, lease, pay-per-view, and rent to own, to name 
just a few. Consumers may be offered a choice among these and other models from the same 
or different distributers and/or other providers. Payment for use may happen over a network 

25 and/or other communication channels to some payment settlement service. Consumer usage 
and ordered information may flow back to creators, distributers, and/or other participants. 
The elementary copy protection technologies for recordable optical discs now being 
introduced cannot support these and other sophisticated models. 



PHNL000448 



Document US-A 5 629 980 discloses a method and device for controlling 
distribution and use of a digital work as define in the preamble of claims 1 and 13, wherein a 
digital or usage right is acquired together with the purchase. This usage right limits how a 
5 music track purchased on Internet, downloaded, and stored in scrambled form on a 

recordable optical disc can be used. These digital rights are also called usage rules or usage 
rights. For example, the buyer may be allowed to make three copies for a personal use, a 
fourth copy will be refused. Alternatively, the buyer may be allowed to play a specific track 
four times, whereas the optical disc drive will not play a fifth time. 

10 The usage rights are stored preferably on the optical disc. In this case, the 

usage rights travel together with the music and the disc will play on all disc players that 
support this feature. 

An Electronic Music Download (EMD) application used to download the 
music track from the Internet has to store several pieces of information on the disc, e. g. the 

1 5 scrambled audio track, the key needed to descramble the audio track, and a description of the 
usage rights. Some of the usage rights can be decreased (i. e. consumed) when they are used. 
The rule "three copies for personal use", for instance, becomes "two copies for personal use" 
after one copy has been made. The usage rights therefore contains counters that can be 
updated when a usage right has been exercised. 

20 Any equipment which is arranged to access the downloaded track should 

comply with the rules underlying the purchased usage rights. That is, only authorised, trusted, 
playback equipment should be able to read the key, and set the usage rights or counters. 
Therefore, a non-compliant application which may copy tracks without updating the counter, 
increment counters without paying additional fees, or make an identical copy of the disk with 

25 the same usage rights should be prevented. 

As regards a bit-by-bit copy operation using a standard disc drive, a Unit Disc 
Identifier (UDI) has been suggested, which may be written by the disc manufacturer on the 
disc in a way that can be read by the playback equipment, but cannot be modified. If a 
recordable disc has a UDI, this identifier can be combined vdth or incorporated in a 

30 scrambling key of the audio track. A bit-by-bit copy of the concerned disc onto another 
record carrier cannot be descrambled anymore, since the other record carrier will have a 
different UDI, such that the scrambling key cannot be recovered anymore. 

However, a "copy and restore attack" or "replay attack" may be used to 
circumvent the above UDI solution. In this case, a standard disc drive is used to determine 
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those bits which have been changed on the disk when a usage right is consumed. These bits 
typically relate to the counters of the usage rights and are therefore copied to another storage 
medium. Then, the usage right is consumed, e. g. by making copies, until a copy-counter has 
reached zero and no further copies are allowed. The determined and stored bits are restored 
5 from the storage medium back onto the disc. Now, the disc is in a state which pretends that 
the usage rights have not been consumed or exercised, such that the user may continue 
making copies. In this case, the UDI-dependent scrambling key has no influence on the copy 
operation, since the disc has not been changed. 

Furthermore, document WO-A-97/43761 discloses a rights management 

10 arrangement for storage media such as optical digital video discs, wherein a secure "software 
container" is used to protectively encapsulate a digital work and corresponding usage right 
information. Furthermore, an encrypted key block is stored on the disc, which provides one 
or more cryptographic keys for use in decrypting the digital work. The decryption keys for 
decrypting the key block are also stored on the record carrier in the form of a hidden 

1 5 information, stored in a location which can be physically enabled by a corresponding 

firmware or jumper of the disc drive, such that it maybe accessible for disc players but not for 
personal computers. Thus, any attempt to physically copy the disc by a personal computer 
would result in a failure to copy the hidden keys. 

However, even this cryptographic protection method may not prevent a 

20 successful "copy and restore attack", since a potential hacker restores the detected and copied 
usage right data back to their original location on the same disc. Then, the hacker may play 
again the track for which the usage rights have been exercised, without paying again. It is 
noticed that the hacker does not have to read or write the hidden keys to circumvent the 
protection mechanism. Thus, the "copy and restore attack" is useful for rights that are 

25 consumed, such as a right to play once, a right to make a limited number of copies (where a 
copy counter on the disk is incremented after each copy), or a right to move a track from one 
disc to another (where the track on the original disc is deleted). 



30 It is therefore an object of the present invention to provide a method and 

device for controlling distribution and use of a digital work based on an attached usage right 
information, and a corresponding record carrier, by means of which a circumvention of the 
usage rights by a "copy and restore attack" can be prevented. 
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This object is achieved by a method as defined in claim 1, by a record carrier 
as defined in claim 11, and by a device as defined in claim 13. 

Accordingly, the usage right information is re-written and a new hidden 
information used for encrypting or verifying the usage right information is stored, when the 

5 usage right information has changed. Thus, a simple restoring operation of the usage right 
information in the course of a "copy and restore attack" merely restores the previous usage 
right information but does not restore the previous hidden information. However, due to the 
fact that the changed hidden information no longer fits or corresponds to the previous or 
original usage right information, a decryption or a verification of the usage right information 

10 is no longer possible, such that the protection system of the disc player will recognise the 

attempt of firaud. A "copy and restore attack" of the hidden channel will not work, since non- 
compliant devices are not capable of reading or writing on the hidden channel. 

According to an advantageous development, the hidden information may be a 
checksxim over a data block containing the usage right information. In this case, the usage 

1 5 right information does not have to be encrypted on the record carrier. Any manipulation of 
the content of the usage right information can be prevented by calculating the checksum and 
storing this checksimi in the hidden channel. A "copy and restore" attack does not work, since 
the hidden checksum which has been changed with the update of the usage right information 
will no longer be valid for the restored original usage right information. 

20 Alternatively, according to another advantageous development, the hidden 

information may be a key used for a decrypting the usage right information, wherein the key 
is randomly changed and the usage right information is re-encrypted by using the changed 
key, when the usage right information has changed. The restoring of the old version of the 
usage right information will not work, since the changed key carmot be used for decrypting 

25 the original usage right information. 

Preferably, the previous key is destroyed after the change of the key. Thereby, 
the key used for encrypting the original usage right information can no longer be retrieved 
and a potential hacker cannot decrypt the original usage right information. 
Preferably, the hidden charmel may be generated by: 

30 storing the hidden information in deliberate errors which can be corrected again; 
storing the hidden information in merging bits of a runlength-limited code; 
controlling a polarity of a predetermined runlength of a predetermined word of a runlength- 
limited code, according to the hidden information; 
storing the hidden information in deliberate errors in a time-base; or 
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storing the hidden information in a memory embedded with a disc controller. Thereby, a 
hidden channel can be provided which cannot be read or written by existing or conventional 
disc drives. Even by a firmware update, they may not be able to read or write the hidden 
channel. In particular, a modification of the respective integrated circuits is required for 
5 copying or reading the hidden channel. This, however, is expensive and requires 
corresponding expert knowledge. The known lead-in areas of record carriers are not 
sufficient to provide such a hidden channel, since the conventional disc drives may give 
access to these areas by simple firmware hacking operation. 

According to a fiirther advantageous modification, the attached usage right 
1 0 information may be stored in a table together with a key information used for decrypting the 
dighal work. Thus, the key information required for decrypting the digital work can no longer 
be decrypted after a "copy and restore attack". The digital work may be an audio track 
downloaded from the Internet to a recordable optical disc. 

Preferably, the usage right information comprises a counter information which 
15 can be updated when the usage right has been exercised. Thus, the change of the counter 
information leads to a re-writing and re-encrypting operation with a new hidden key, such 
that a detection and restoring of the updated counter values is useless due to the changed 
hidden decryption key. 

According to a further advantageous modification, each track of the recording 
20 medium may comprise its on usage right information and hidden information. In this case, a 
hidden key is provided for each track of the record carrier, as long as the hidden channel 
provides enough capacity. 



25 In the following, the present invention will be described in greater detail based 

on a preferred embodiment with reference to the accompanying drawings, of which: 

Fig. 1 shows a modification of a key-locker table and a hidden key after a 
copy operation, according to the preferred embodiment of the present invention. 

Fig. 2 shows a basic block diagram of a driving device for driving a record 
30 carrier according to the preferred embodiment of the present invention, and 

Fig. 3 shows a basic flow diagram of a secure update of a usage right informa- 
tion, according to the preferred embodiment of the present invention. 
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The preferred embodiment will now be described on the basis of an EMD 
from the Internet onto a record carrier such as a recordable optical disc, where a music track 
is purchased, downloaded and stored on the record carrier. 

Nevertheless, in the present application, the term "digital work", refers to any 

5 work that has been reduced to a digital representation. This includes any audio, video, text or 
multimedia work and any accompanying interpreter (e. g. software) that may be required for 
recreating the work. The term "usage rights" refers to any rights granted to a recipient of a 
digital work. Generally, these rights define how a digital work can be used and if it can be 
further distributed. Each usage right may have one or more specified conditions which must 

10 be satisfied for the right to be exercised. The usage rights are permanently "attached" to the 
digital work. Copies made of a digital work will also have usage rights attached. Thus, the 
usage rights and any associated fees assigned by a creator and subsequent distributer will 
always remain with a digital work. 

According to the preferred embodiment, all secrets, e. g. usage rights, keys, 

1 5 counters, an own identification of the disc or any information which is to be stored in a 

tamper-free way, are stored together in a table which is called a key-locker table KLT. The 
key-locker table KLT is encrypted e. g. by a DBS algorithm and stored on the disc in any 
convenient location. The key used for encrypting the key-locker KLT is called the key-locker 
key KLK. This key KLK is stored on the disk in a special hidden channel or secure side 

20 channel which cannot be read or written by existing or conventional disc drives. In particular, 
the hidden channel must be arranged such that a firmware update of existing disc drives is not 
sufficient to enable a reading or writing operation of the hidden channel. 

The hidden channel must be hidden very deeply in the physical characteristics 
of the recorded data stream, record carrier or disc drive, such that a change of the integrated 

25 circuits is required to read or write to the hidden channel with existing disc drives. Some 
possibilities for implementing such a hidden channel are: 

(i) storing the hidden information (key) in deliberate errors of the data stream, 
which can be corrected again; 

(ii) storing the hidden information in merging bits of a runlength-limited code 
30 sequence; 

(iii) storing the hidden information by controlling the polarity of a predetermined 
runlength of a predetermined data or control symbol of a nmlength-limited code sequence, 
according to the hidden information; or 
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(iv) storing the hidden information in deliberate errors in the time-base of the data 

stream. 

However, any other hidden channel suitable to prevent a reading or writing of 
the hidden information with existing disc drives can be implemented. 

5 The key-locker table KLT is re-written each time its content is changed, e. g. 

when the usage right is consumed. Then, a new random key-locker key KLK is used each 
time the key-locker table KLT is re-written. 

Fig. 1 shows a purchased version of the key-locker table KLT written on a 
recordable optical disc, which is encrypted by a first key-locker key KLK-1 stored in a 

1 0 hidden channel of the optical disc, e. g. as indicated above. In the example shown in Fig. 1 , 
the user has purchased a right to make three copies of track No. 2. In the key-locker table 
KLT shown in Fig. 1, only the content relevant to track No. 2 is shown, wherein the table 
comprises an identifier portion and a data portion and wherein the identifier portion includes 
an information used for identifying the respective data in the data portion. In particular, a key 

1 5 (indicated in hexa decimal notation) is followed by a track No. 2 usage right for track No. 2 
(indicated in binary notation) and by a coimter value of track No. 2, which is set to "3" in line 
with the purchased usage right. 

After the copy operation of track No. 2, a new key-locker-key KLK-2 is 
randomly selected by the disc drive, used for re-encrypting the updated key-locker table 

20 KLT, and stored in the hidden channel. Thus, as indicated in the lower part of Fig. 1 , after the 
first copy of track two, the key-locker table KLT has been re-encrypted by the new key- 
locker key KLK-2 and updated by decreasing the counter value in the key-locker table KLT 
to "2". 

Accordingly, an extraction and intermediate storage of the original or 
25 purchased key-locker table KLT, followed by a re-storing after the first copy operation is 
useless, since the new key-locker key KLK-2 is now stored in the hidden channel and a 
decryption of the key-locker table KLT would now no longer be possible by the disc drive. 
Accordingly, any "copy and restore attack" is readily detected by the disc drive or at least 
leads to an error. 

30 Fig. 2 shows a basic block diagram of a disc drive according to the preferred 

embodiment of the present invention, which is arranged to generate and write a key-locker 
table KLT together with a digital work DW (i. e. a music track or the like) on a recordable 
disc 10 based on usage right acquired together with a purchase from the Internet. In 
particular, an EMD application which may run on a computer system to provide a 



PHNL000448 

8 08.05.2001 
corresponding download function stores the purchased scrambled digital work together with 
the key required for descrambling the digital work, and a description of the usage rights in a 
memory 23 of the disc drive. As an alternative, the purchased pieces of information may be 
stored in a memory of the computer system from which they are read by a drive controller 21 
5 of the disc drive. 

The drive controller 21 reads the purchased pieces of information from the 
memory 23 and supplies the key and the usage rights to a key-locker update and encryption 
unit 22 which is arranged to generate a corresponding key-locker table KLT and to randomly 
select a key-locker key KLK used for encrypting the key-locker table KLT. The drive 

1 0 controller 2 1 receives the generated key-locker table KLT and key-locker key KLK and 

controls a reading and writing (RW) unit 20 so as to write the purchased digital work DW (i. 
e. music track) and the key-locker table KLT at predetermined positions on the recordable 
disc 10. Furthermore, the drive controller 21 controls the RW unit 20 so as to store the key- 
locker key KLK in a hidden channel of the recordable disc 10, which is not accessible by 

1 5 conventional disc drives or disc players. With every change of the purchased usage right due 
to a consumption (i. e. copy or play operation), the drive controller 21 supplies a 
corresponding control signal to the key-locker update and encryption unit 22 which updates 
the key-locker table KLT correspondingly, generates a new randomly selected key-locker key 
KLK, and encrypts the key-locker table KLT using the new key-locker key KLT. The drive 

20 controller 21 receives the updated and scrambled key-locker table KLT and the new key- 
locker key KLK and controls the RW unit 20 so as to write the re-scrambled key-locker table 
KLT onto the recordable disc 10 and the new key-locker key KLK in the hidden channel. 
This updating and re-encryption by using a new key-locker key KLK is thus performed after 
each change inside the key-locker table KLT. 

25 If the updated key-locker table KLT indicates that the usage rights have been 

exercised or consumed, the disk controller 21 refuses the use of the respective digital work, e. 
g. by transmitting a corresponding error message or control signal to the EMD application. 

It is to be noted that the key-locker update and encryption unit 22 may be 
implemented as a software routine of the drive controller 21. 

30 Fig. 3 shows a basic flow diagram of the above procedure for a secure update 

of the usage rights. According to Fig. 3 a new random key-locker key KLK-2 is generated in 
step SI 00 after the recordable disc has been loaded into the disc drive and a corresponding 
usage operation of the digital work has been started. Then, the content of the key-locker table 
KLT is updated and encrypted with the new key-locker key KLK-2 by the key-locker update 
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and encryption unit 22 (step SlOl). Thereafter, the new key-locker-key KLK-2 is written by 
the RW unit 20 in the hidden channel HC of the recordable disc 10 (step SI 02). This step 
may be followed by the optional steps of verifying that the new key-locker key KLK-2 and 
the re-encrypted key-locker table KLT have been written correctly on the recordable disc 10. 
5 Finally, the previous key-locker key KLK-1 may be destroyed by the RW unit 20 (step 
S103). 

According to an alternative modification of the preferred embodiment, the 
key-locker update and encryption unit 22 may be replaced by a key locker update and 
verification unit arranged to calculate a checksum over the content of the key-locker table 

1 0 KLT and to store this checksum in the hidden channel HC (instead of the key-locker key 
KLK). In this case, the key-locker table KLT even does not need to be encrypted. Any 
manipulation of the content of the key-locker table KLT can be verified by the key-locker 
update and verification unit by a checking operation using the hidden checksum. Any change 
of the key-locker table KLT resulting fi-om a consumption or exercise of the purchased usage 

1 5 rights leads to a changed checksum which is written in the hidden channel HC. Thus, the 
"copy and restore attack" will lead to a mismatch between the actual checksum of the 
restored key-locker table KLT and the hidden check simi. This mismatch will be detected by 
the key-locker update and verification unit, such that an error processing or protection 
mechanism may be started. 

20 Thus, the present invention provides the advantage that a "copy and restore 

attack" leads to a mismatch between the hidden key-locker key KLK or the alternative hidden 
checksum and the restored key-locker table KLT. This mismatch either prevents a 
descrambling of the key-locker table KLT or leads to an error in the verification processing. 
Thus, the fraud attack can be detected at the disc drive. 

25 In another embodiment, the hidden channel comprises random data which is 

used for calculating a checksum over the content of the key-locker table KLT and which 
checksum is stored in the user data, therefore freely accessible, both for compliant and non- 
compliant devices. If it is ascertained that the content of the hidden channel can not be 
deterministically changed by a non-compliant device, the content of the hidden channel may 

30 be freely accessible A compliant device can calculate the checksum by reading the random 
data in the hidden channel an check whether the calculated checksum corresponds to 
checksum present in the user data. A calculated checksum which differs from the checksum 
present in the user data indicates that the content of the hidden channel might be tampered 
with. 
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It is noted that the present invention is not restricted to the above 
embodiments, but can be applied to any recording or writing applications which should be 
protected against "copy and restore attacks". The EMD may be performed by a free 
distribution of the scrambled digital work DW on a pressed disc or via a broadcast channel. 
5 The key however, is then not distributed together with the content of the digital work. It can 
be purchased via the Internet. In such a case, a download of the compressed digital work is 
not necessary, only the keys have to be downloaded. Thereby, the network load and 
transmission costs can be decreased. 

Furthermore, the key-locker table KLT may be arranged as one key-locker 

10 table per track. In this case, enough capacity of the hidden channel is required to store a 

random key-locker key KLK for each key-locker table KLT. The key-locker table KLT could 
be split into a plurality of key-locker tables if its size becomes too big to perform a re-writing 
operation at each transaction. Then, each key-locker table KLT will have its own random 
key-locker key KLK stored in the hidden channel. 

1 5 The present invention may as well be applied to protect hard discs against 

"copy and restore attacks". In this case, the hidden channel could be arranged as a memory 
embedded within the HDD controller. A similar application is possible for flash memory 
cards or the like. Generally, the present invention can be applied to protect any further 
recording medium, e.g. magneto-optic recording medium (minidisc) or magnetic tape. 



